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DETAILED ACTION 



1 . Applicant's response filed on November 3, 2005 has been received and 
carefully considered. 



Claim Rejections - 35 USC § 102 

2. The following is a quotation of the appropriate paragraphs of 35 
U.S.C. 102 that form the basis for the rejections under this section made in this Office 
action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), 
by another filed in the United States before the invention by the applicant for patent or (2) a 
patent granted on an application for patent by another filed in the United States before the 
invention by the applicant for patent, except that an international application filed under the treaty 
defined in section 351(a) shall have the effects for purposes of this subsection of an application 
filed in the United States only if the international application designated the United States and 
was published under Article 21(2) of such treaty in the English language. 

3. Claims 1-4, 6, 9-17, 20, 27-29 are rejected under 35 U.S.C. 102(e) as 
being anticipated by Bojinov et al. (U.S. Pub. No.: 2005/0102498). 

Referring to claim 1 : 

Bojinov et al. teach: 

A method for encrypted data storage in a storage system, the method 

comprising: 

Converting blocks of data to produce corresponding converted blocks of 
data, wherein a converted block of data is encrypted with cryptographic criteria (see 
page 3, paragraph [0025], lines 10-16 of Bojinov et al.); 
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Receiving a read request to access the read data from the storage 
system, wherein said read data is decrypted from one converted block of data of said 
converted blocks of data using the cryptographic criteria to produce the decrypted block 
of data (see page 1 , paragraph [0014], lines 5-8 of Bojinov et al.). 
Referring to claim 2 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose 
that the conversion replaces each block of data by a corresponding converted block of 
data thereof (see page 3, paragraph [0025], lines 10-16 of Bojinov et al.). 
Referring to claim 3 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose 
that the steps of encryption and decryption comprise executing computer program code 
on a data processing component (see claims 26, 28 of Bojinov et al.). 
Referring to claim 4 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose a 
communication network comprising a switched fabric and a plurality of devices (see 
figure 6 of Bojinov et al.). 
Referring to claim 6 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose 
that a file-level read request produces one or more block-level read requests (see page 
3, paragraph [0030], lines 8-12 of Bojinov et al.). 
Referring to claim 9 : 

Bojinov et al. teach: 

A storage system including storage device, the storage system being 
coupled to a host device via a network (see e.g. figure 6, element 622 of Bojinov et al.), 
a method for storing encrypted data comprising: 
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Converting a plurality of data bocks to produce corresponding a plurality of 
converted data blocks, wherein a converted block of data is encrypted with 
cryptographic criteria (see page 3, paragraph [0025], lines 10-16 of Bojinov et al.); 

Receiving a read request to access the read data from the storage 
system, decrypting the read data using the cryptographic criteria to produce the 
decrypted block of data (see page 1, paragraph [0014], lines 5-8 of Bojinov et al.). 
Referring to claim 10 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 9 above). Bojinov et al. further disclose 
storing the data block to the storage device in response to a write request from the host 
device, and encrypting the data block with the cryptographic criteria before the data 
being written to the data storage (see page 3, paragraph [0025], lines 10-16 of Bojinov 
et al.). 

Referring to claim 1 1 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 9 above). Bojinov et al. further disclose 
that the data could be non-encrypted (see page 4, paragraph [0030], last 5 lines of 
Bojinov et al.). 

Referring to claim 1 2 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 9 above). Bojinov et al. further disclose 
that the system supports data encryption and data decryption (see page 1 , paragraph 
[0014], lines 5-8 of Bojinov et al.), and that the system supports different type of 
encryption method (see page 3, paragraph [0025], lines 16-19 of Bojinov et al.). 

Referring to claim 13 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 9 above). Bojinov et al. further disclose 
accessing read data from the storage device in response to a read request, decrypting 
the read data using the cryptographic criteria to produce the decrypted block of data 
(see page 1, paragraph [0014], lines 5-8 of Bojinov et al.). 
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Referring to claim 14 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 9 above). Bojinov et al. further disclose 
storing the data block to the storage device in response to a write request from the host 
device, and encrypting the data block with the cryptographic criteria before the data 
being written to the data storage (see page 3, paragraph [0025], lines 10-16 of Bojinov 
et al.). 

Referring to claim 15 : 

Bojinov et al. teach: 

A storage system comprising: 

A storage component (see figure 1, element 121 of Bojinov et al.); 

A cryptographic component in data communication and operable to 
convert a plurality of unconverted blocks of data to produce the corresponding 
converted blocks of data (see page 1, paragraph [0014], lines 1-3 of Bojinov et al.), 

Wherein the cryptographic component is further operable to receive read 
and write request for data stored on the storage component and convert the data blocks 
(see page 1, paragraph [0012], lines 7-9 of Bojinov et al.), 

Wherein the cryptographic component is further operable to access the 
read data from the storage device in response to a read request, decrypting the read 
data using the cryptographic criteria to produce the decrypted block of data (see page 1 , 
paragraph [0014], lines 5-8 of Bojinov et al.), 

Wherein the cryptographic component is further operable to store the data 
block to the storage device in response to a write request from the host device, and 
encrypting the data block with the cryptographic criteria before the data being written to 
the data storage (see page 3, paragraph [0025], lines 10-16 of Bojinov et al.). 
Referring to claim 16 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 15 above). Bojinov et al. further disclose a 
file system configured to receive file-level read and write requests from one or more 
host devices, to produce the read and write requests based on the file-level read and 
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write requests, and to communicate the read and write requests to the cryptographic 
component (see page 2, paragraph [0019], lines 6-9 of Bojinov et al.). 

Referring to claim 1 7 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 15 above). Bojinov et al. further disclose 
the interfaces between the components in the system (see figure 1, elements 110, 120, 
130 of Bojinov et al.). 

Referring to claim 20 : 

Bojinov et al. teach the claimed subject matter: a system for encrypted 
data storage in a storage system (see claim 15 above). Bojinov et al. further disclose 
that the cryptographic process could be null, which results in non-encrypted data (see 
page 4, paragraph [0030], last 5 lines of Bojinov et al.). 

Referring to claim 27 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose 
storing the data block to the storage device in response to a write request from the host 
device, and encrypting the data block with the cryptographic criteria before the data 
being written to the data storage (see page 3, paragraph [0025], lines 10-16 of Bojinov 
et al.). 

Referring to claim 28 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose the 
data storage supports file-level write request (see page 2, paragraph [0019], lines 6-9 of 
Bojinov et al.), which produces block-level write requests (see page 3, paragraph 
[0030], lines 8-12 of Bojinov et al.). 

Referring to claim 29 : 

Bojinov et al. teach the claimed subject matter: a method for encrypted 
data storage in a storage system (see claim 1 above). Bojinov et al. further disclose a 
host device (see e.g. figure 1 , element 622 of Bojinov et al.). 

Referring to claim 30 : 
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Bojinovetal. teach: 

A method for storing encrypted data comprising: 

Converting blocks of data to produce corresponding converted blocks of 
data, wherein a converted block of data is encrypted with cryptographic criteria (see 
page 3, paragraph [0025], lines 10-16 of Bojinov et al.); 

Receiving a read request to access the read data from the storage 
system, decrypting the read data using the cryptographic criteria to produce the 
decrypted block of data (see page 1, paragraph [0014], lines 5-8 of Bojinov et al.). 
Referring to claim 31 : 

Bojinov et al. teach the claimed subject matter: method for storing 
encrypted data (see claim 30 above). Bojinov et al. further disclose overwriting the 
block of data (see page 2, paragraph [0021], last 4 lines of Bojinov et al.). 
Referring to claim 32 : 

Bojinov et al. teach the claimed subject matter: method for storing 
encrypted data (see claim 30 above). Bojinov et al. further disclose storing the data 
block to the storage device in response to a write request from the host device, and 
encrypting the data block with the cryptographic criteria before the data being written to 
the data storage (see page 3, paragraph [0025], lines 10-16 of Bojinov et al.). 



Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 



(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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5. Claim 5 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Bojinov et al. (U.S. Pub. No.: 2005/0102498) in view of Ashton (U.S. Pub. No.: 
2004/0125077). 

Referring to claim 5 : 

i. Bojinov et al. teach the claimed subject matter: a method for 
encrypted data storage in a storage system (see claim 1 above). However, Bojinov et 
al. do not specifically mention that encrypting and decrypting are performed on the logic 
circuitry. 

ii. Ashton discloses a method wherein a logic circuit includes circuitry 
and/or program instructions for decryption, encryption, or data comparison (see page 4, 
paragraph [0040], lines 9-11 of Ashton). 

iii. It would have been obvious to a person of ordinary skill in the art at 
the time the invention was made to combine the teaching of Ashton into the method of 
Bojinov et al. to perform encrypting and decrypting on a logic circuitry. 

iv. The ordinary skilled person would have been motivated to have 
applied the teaching of Ashton into the system of Bojinov et al. to perform encryption 
and decrypting on the logic circuitry, because the logic circuitry can be configured to 
manage data operations, and can act as a gateway limiting data that can be written to 
writeable memory, and processing data read from writeable memory or read only 
memory (see page 4, paragraph [0040], lines 3-6 of Ashton). 



6. Claims 18-19 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Bojinov et al. (U.S. Pub. No.: 2005/0102498) in view of Cane et al. (U.S. Patent 
No.: 5,940,507). 

Referring to claim 18 : 

i. Bojinov et al. teach the claimed subject matter: a system for 
encrypted data storage in a storage system (see claim 15 above). However, Bojinov et 
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al. do not specifically mention that the cryptographic component comprises one or more 
encryption engines. 

ii. Cane et al. disclose a system wherein a cryptographic engine is 
utilized to encrypt a file (see figure 1, element 14; and column 3, lines 45-47 of Cane et 
al.). 

iii. It would have been obvious to a person of ordinary skill in the art at 
the time the invention was made to combine the teaching of Cane et al. into the system 
of Bojinov et al. to utilize one or more encryption engines to perform encrypting. 

iv. The ordinary skilled person would have been motivated to have 
applied the teaching of Cane et al. into the system of Bojinov et al. to utilize encryption 
engines, because an encryption engine may invoke a specialized encryption hardware 
to do the encrypting, depending on the encryption method desired (see column 3, lines 
51-55 of Cane et al.), thus it is more efficient. 

Referring to claim 19 : 

i. Bojinov et al. teach the claimed subject matter: a system for 
encrypted data storage in a storage system (see claim 15 above). However, Bojinov et 
al. do not specifically mention that the cryptographic component is operable to obtain 
the criteria which specify the cryptographic process. 

ii. Cane et al. disclose a system wherein the cryptographic component 
is operable to obtain the cryptographic criteria (see figure 1, elements 18, 22 of Cane et 
al.). 

iii. It would have been obvious to a person of ordinary skill in the art at 
the time the invention was made to combine the teaching of Cane et al. into the system 
of Bojinov et al. to make the cryptographic component to be operable to obtain the 
cryptographic criteria. 

iv. The ordinary skilled person would have been motivated to have 
applied the teaching of Cane et al. into the system of Bojinov et al. to make the 
cryptographic component to be operable to obtain the cryptographic criteria, because 
the cryptographic component supports various encryption methods (see column 3, lines 
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51-55 of Cane et al.), thus it is advantageous to let the application specify the desired 
cryptographic criteria and send them to the cryptographic component. 

Allowable Subject Matter 



7. Claims 21-25, 30-32 allowed. 



Response to Arguments 

8. Applicant's arguments filed on November 3, 2005 have been fully 
considered but they are not persuasive. 

Applicant argues: 

"The accessing and the converting of the data occur in parallel" 
Examiner maintains: 

The above mentioned claim limitation is not found in the claim of the 

application. 

Conclusion 

9. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire 
THREE MONTHS from the mailing date of this action. In the event a first reply is filed 
within TWO MONTHS of the mailing date of this final action and the advisory action is 
not mailed until after the end of the THREE-MONTH shortened statutory period, then 



Application/Control Number: 10/799,086 
Art Unit: 2135 



Page 1 1 



the shortened statutory will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Joseph Pan whose telephone number is 571-272- 
5987. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Kim Vu can be reached at 571-272-3859. The fax and phone 
numbers for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Any inquiry of a general nature or relating to the status of this application 
or proceeding should be directed to the receptionist whose telephone number is 571- 
272-2100. 



Joseph Pan 
January 17, 2006 




